Comment 2 for bug 1873514

sha256 is now used instead of sha1 - this is probably as important as the (yet unpublished) CVEs as it is seen as a breaking change by some colleagues. The change is however only breaking for those that don´t install trustworthy certificates.